Prywatność
Home
> Privacy Policy

The privacy policy describes the principles of processing information about you, including personal data and cookies.

1. General Information
  1. This policy applies to the website operating at: sitzkunst.eu.
  2. The website operator and personal data administrator is: DFM Sp. z o.o., ul. Olsztyńska 21, 11-040 Dobre Miasto.
  3. Operator’s contact email address: marketing@livingroom.pl.
  4. The Operator is the Administrator of your personal data with respect to the data voluntarily provided in the Service.
  5. The Service uses personal data for the following purposes:
    • Managing the newsletter
    • Conducting online chat conversations
    • Handling inquiries via the contact form
    • Presenting offers or information
  6. Through data voluntarily entered in forms, which are entered into the Operator’s systems.
    • Through the storage of cookies on end devices.
2. Selected Data Protection Methods Used by the Operator
  1. Login areas and personal data entry points are protected at the transmission layer (SSL certificate). This ensures that personal and login data entered on the site are encrypted on the user’s computer and can only be read on the target server.
  2. Personal data stored in the database are encrypted in a way that only the Operator holding the key can read them. This protects the data in case the database is stolen.
  3. User passwords are stored in hashed form. The hashing function is one-way and cannot be reversed, which is the modern standard for storing user passwords.
  4. Two-factor authentication is used on the site, providing additional login protection.
  5. The Operator periodically changes its administrative passwords.
  6. The Operator regularly creates backups to protect data.
  7. An important element of data protection is the regular updating of all software used by the Operator to process personal data, particularly developer components.
3. Hosting
  1. The Service is hosted (technically maintained) on the servers of another company.
  2. To ensure technical reliability, the hosting company maintains server logs, which may include:
    • resources specified by URL identifier (addresses of requested resources – pages, files),
    • time of request arrival,
    • time of response dispatch,
    • client station name – identification via HTTP protocol,
    • error information that occurred during HTTP transactions,
    • URL of the previously visited page (referrer link), if the visit occurred via a link,
    • user’s browser information,
    • IP address information,
    • diagnostic information related to the ordering process through on-site recorders,
    • information related to email handling directed to and sent by the Operator.
4. Your Rights and Additional Information About Data Usage
  1. In some cases, the Administrator has the right to share your personal data with other recipients if necessary to perform the contract with you or to fulfill legal obligations of the Administrator. This applies to the following groups of recipients:
    • hosting company under data entrustment,
    • companies providing marketing services to the Administrator.
  2. Your personal data are processed no longer than necessary for activities defined by separate legal provisions (e.g., accounting). Marketing-related data are not processed for longer than 3 years.
  1. You have the right to request from the Administrator:
    • access to your personal data,
    • rectification,
    • deletion,
    • restriction of processing,
    • data portability.
  2. You have the right to object to processing under item 3.2 regarding the processing of personal data for the purposes of legitimate interests pursued by the Administrator, including profiling. However, this right cannot be exercised if there are important legally valid grounds for processing that override your interests, rights, and freedoms, particularly the establishment, exercise, or defense of claims.
  3. You have the right to lodge a complaint with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
  4. Providing personal data is voluntary but necessary to use the Service.
  5. Automated decision-making, including profiling, may be applied to you for the purpose of providing services under the contract and for the Administrator’s direct marketing.
  6. Personal data are not transferred to third countries outside the EU.
5. Information in Forms
  1. The Service collects information voluntarily provided by the user, including personal data if submitted.
  2. The Service may save information about connection parameters (time stamp, IP address).
  3. The Service may, in some cases, save information linking form data with the user’s email address. In such a case, the user’s email address appears in the URL of the page containing the form.
  4. Data provided in the form are processed for the purpose of the form’s specific function (e.g., service request handling, business contact, service registration). Each time, the context and description of the form clearly explain its purpose.
6. Administrator Logs
  1. User behavior in the Service may be subject to logging and is used for Service administration.
7. Important Marketing Techniques
  1. The Operator uses statistical traffic analysis via Google Analytics (Google Inc., USA). No personal data are transmitted, only anonymized information. The service uses cookies. Users can view and edit their ad preferences collected by Google’s ad network here: https://www.google.com/ads/preferences/
  2. The Operator uses remarketing techniques, adapting advertising content to user behavior on the site. No personal data are transferred to advertisers; cookies are the technological basis of such actions.
  3. The Operator uses Facebook Pixel (Facebook Inc., USA). This allows Facebook to know that a registered user is visiting the Service. No additional personal data are transferred by the Operator.
  4. The Operator uses tools to analyze user behavior (heatmaps, session recordings). These are anonymized before being sent to the service provider. Passwords and personal data are excluded from recording.
  5. The Operator uses solutions automating Service operation, e.g., sending emails to users after visiting specific subpages, provided that the user has consented to marketing communication.
8. Information About Cookies
  1. The Service uses cookies.
  2. Cookies are IT data, in particular text files, stored on the User’s device and intended for use on the Service’s websites. Cookies usually contain the website name, storage time, and a unique number.
  3. The entity placing cookies on the User’s device and accessing them is the Service Operator.
  4. Cookies are used for:
    • maintaining the user’s session (after login), so that the user does not need to re-enter login and password on each subpage,
    • implementing purposes described above in “Important Marketing Techniques”.
  5. The Service uses two main types of cookies: session cookies (temporary, deleted after logging out or closing the browser) and persistent cookies (stored until expiration or manual deletion).
  6. By default, browsers allow cookies. Users can change settings, delete cookies, or block them. Details are available in the browser’s help documentation.
  7. Restrictions on cookies may affect some Service functionalities.
  8. Cookies placed on the user’s device may also be used by partners cooperating with the Operator, particularly Google (Google Inc., USA), Facebook (Facebook Inc., USA), Twitter (Twitter Inc., USA).
9. Managing Cookies – How to Give and Withdraw Consent
  1. If you do not wish to receive cookies, you can change your browser settings. Please note that disabling cookies necessary for authentication, security, and user preferences may make it difficult or impossible to use some websites.
  2. Instructions for managing cookies in popular browsers:

Urządzenia mobilne: